CVE-2016-9466

Nextcloud Server before 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from Reflected XSS in the Gallery application. The gallery app was not properly sanitizing exception messages from the Nextcloud/ownCloud server. Due to an endpoint where an attacker could influence the error message, this led to a reflected Cross-Site-Scripting vulnerability.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.1 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
hackeroneCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
VendorProductVersion
nextcloudnextcloud_server
10.0.0 ≤
𝑥
< 10.0.1
owncloudowncloud
9.0.0 ≤
𝑥
< 9.0.6
owncloudowncloud
9.1.0 ≤
𝑥
< 9.1.2
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
nextcloud
cosmic
dne
bionic
dne
artful
dne
zesty
dne
yakkety
dne
xenial
dne
trusty
dne
precise
dne
owncloud
cosmic
dne
bionic
dne
artful
dne
zesty
dne
yakkety
dne
xenial
dne
trusty
dne
precise
ignored
Common Weakness Enumeration
References
https://github.com/nextcloud/gallery/commit/f9ef505c1d60c9041e251682e0f6b3daad952d58
https://github.com/owncloud/gallery/commit/b3b3772fb9bec61ba10d357bef42b676fa474eee
https://github.com/owncloud/gallery/commit/dc4887f1afcc0cf304f4a0694075c9364298ad8a
https://hackerone.com/reports/165686
https://nextcloud.com/security/advisory/?id=nc-sa-2016-009
https://owncloud.org/security/advisory/?id=oc-sa-2016-019
https://github.com/nextcloud/gallery/commit/f9ef505c1d60c9041e251682e0f6b3daad952d58
https://github.com/owncloud/gallery/commit/b3b3772fb9bec61ba10d357bef42b676fa474eee
https://github.com/owncloud/gallery/commit/dc4887f1afcc0cf304f4a0694075c9364298ad8a
https://hackerone.com/reports/165686
https://nextcloud.com/security/advisory/?id=nc-sa-2016-009
https://owncloud.org/security/advisory/?id=oc-sa-2016-019